Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/6239?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6239?format=api", "vulnerability_id": "VCID-23gs-2b9f-3yey", "summary": "information disclosure", "aliases": [ { "alias": "CVE-2017-12613" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4050?format=api", "purl": "pkg:alpm/archlinux/apr@1.6.3-1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/apr@1.6.3-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1061195?format=api", "purl": "pkg:deb/debian/apr@1.6.5-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-qfks-d7xp-zyaa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.6.5-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/169420?format=api", "purl": "pkg:deb/debian/apr@1.6.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.6.3-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/169413?format=api", "purl": "pkg:deb/debian/apr@1.7.0-6%2Bdeb11u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2g14-4knq-myek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.7.0-6%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/169411?format=api", "purl": "pkg:deb/debian/apr@1.7.2-3%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.7.2-3%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/169415?format=api", "purl": "pkg:deb/debian/apr@1.7.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.7.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/169414?format=api", "purl": "pkg:deb/debian/apr@1.7.6-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.7.6-3%3Fdistro=trixie" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4049?format=api", "purl": "pkg:alpm/archlinux/apr@1.6.2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/apr@1.6.2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1059238?format=api", "purl": "pkg:deb/debian/apr@1.2.12-5%2Blenny5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-9dbf-2dd3-1beu" }, { "vulnerability": "VCID-cany-j9vs-s3ga" }, { "vulnerability": "VCID-m27x-a1mk-c7fe" }, { "vulnerability": "VCID-qfks-d7xp-zyaa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.2.12-5%252Blenny5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1059236?format=api", "purl": "pkg:deb/debian/apr@1.2.7-8.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-9dbf-2dd3-1beu" }, { "vulnerability": "VCID-cany-j9vs-s3ga" }, { "vulnerability": "VCID-m27x-a1mk-c7fe" }, { "vulnerability": "VCID-qfks-d7xp-zyaa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.2.7-8.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1059237?format=api", "purl": "pkg:deb/debian/apr@1.2.7-9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-9dbf-2dd3-1beu" }, { "vulnerability": "VCID-cany-j9vs-s3ga" }, { "vulnerability": "VCID-m27x-a1mk-c7fe" }, { "vulnerability": "VCID-qfks-d7xp-zyaa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.2.7-9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1059239?format=api", "purl": "pkg:deb/debian/apr@1.4.2-6%2Bsqueeze4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-cany-j9vs-s3ga" }, { "vulnerability": "VCID-m27x-a1mk-c7fe" }, { "vulnerability": "VCID-qfks-d7xp-zyaa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.4.2-6%252Bsqueeze4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1059240?format=api", "purl": "pkg:deb/debian/apr@1.4.6-3%2Bdeb7u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-qfks-d7xp-zyaa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.4.6-3%252Bdeb7u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1061193?format=api", "purl": "pkg:deb/debian/apr@1.5.1-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-qfks-d7xp-zyaa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.5.1-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1061194?format=api", "purl": "pkg:deb/debian/apr@1.5.2-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-qfks-d7xp-zyaa" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/apr@1.5.2-5" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037288?format=api", "purl": "pkg:rpm/redhat/apr@1.3.9-5.el6_4?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/apr@1.3.9-5.el6_4%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037286?format=api", "purl": "pkg:rpm/redhat/apr@1.3.9-5.el6_5?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/apr@1.3.9-5.el6_5%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037285?format=api", "purl": "pkg:rpm/redhat/apr@1.3.9-5.el6_6?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/apr@1.3.9-5.el6_6%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037291?format=api", "purl": "pkg:rpm/redhat/apr@1.3.9-5.el6_7?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/apr@1.3.9-5.el6_7%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037292?format=api", "purl": "pkg:rpm/redhat/apr@1.3.9-5.el6_9?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/apr@1.3.9-5.el6_9%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037295?format=api", "purl": "pkg:rpm/redhat/apr@1.4.8-3.el7_2?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/apr@1.4.8-3.el7_2%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037293?format=api", "purl": "pkg:rpm/redhat/apr@1.4.8-3.el7_3?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/apr@1.4.8-3.el7_3%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037296?format=api", "purl": "pkg:rpm/redhat/apr@1.4.8-3.el7_4?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/apr@1.4.8-3.el7_4%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037287?format=api", "purl": "pkg:rpm/redhat/httpd24-apr@1.5.1-1.el6?arch=1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/httpd24-apr@1.5.1-1.el6%3Farch=1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037283?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.23-125.jbcs?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-bcbd-hrzv-aud1" }, { "vulnerability": "VCID-efcj-1q98-63h8" }, { "vulnerability": "VCID-ma3z-awvs-k7a2" }, { "vulnerability": "VCID-qjyq-jem7-6bdn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.23-125.jbcs%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037284?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.23-125.jbcs?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-bcbd-hrzv-aud1" }, { "vulnerability": "VCID-efcj-1q98-63h8" }, { "vulnerability": "VCID-ma3z-awvs-k7a2" }, { "vulnerability": "VCID-qjyq-jem7-6bdn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.23-125.jbcs%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037297?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-15.GA.jbcs?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-bcbd-hrzv-aud1" }, { "vulnerability": "VCID-efcj-1q98-63h8" }, { "vulnerability": "VCID-ma3z-awvs-k7a2" }, { "vulnerability": "VCID-qjyq-jem7-6bdn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-15.GA.jbcs%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037294?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-15.GA.jbcs?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-bcbd-hrzv-aud1" }, { "vulnerability": "VCID-efcj-1q98-63h8" }, { "vulnerability": "VCID-ma3z-awvs-k7a2" }, { "vulnerability": "VCID-qjyq-jem7-6bdn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-15.GA.jbcs%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037289?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_1.jbcs?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-bcbd-hrzv-aud1" }, { "vulnerability": "VCID-efcj-1q98-63h8" }, { "vulnerability": "VCID-ma3z-awvs-k7a2" }, { "vulnerability": "VCID-qjyq-jem7-6bdn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_1.jbcs%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037290?format=api", "purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_1.jbcs?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-bcbd-hrzv-aud1" }, { "vulnerability": "VCID-efcj-1q98-63h8" }, { "vulnerability": "VCID-ma3z-awvs-k7a2" }, { "vulnerability": "VCID-qjyq-jem7-6bdn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_1.jbcs%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036334?format=api", "purl": "pkg:rpm/redhat/mod_cluster@1.3.8-2.Final_redhat_2.1.ep7?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-evbs-epz4-ekdy" }, { "vulnerability": "VCID-mqyj-2e2e-63ep" }, { "vulnerability": "VCID-p384-yv4k-nyam" }, { "vulnerability": "VCID-ua1q-91gq-pyaj" }, { "vulnerability": "VCID-vpqe-ab29-guc1" }, { "vulnerability": "VCID-zpvv-4hjw-g3bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mod_cluster@1.3.8-2.Final_redhat_2.1.ep7%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036336?format=api", "purl": "pkg:rpm/redhat/mod_cluster@1.3.8-2.Final_redhat_2.1.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-evbs-epz4-ekdy" }, { "vulnerability": "VCID-mqyj-2e2e-63ep" }, { "vulnerability": "VCID-p384-yv4k-nyam" }, { "vulnerability": "VCID-ua1q-91gq-pyaj" }, { "vulnerability": "VCID-vpqe-ab29-guc1" }, { "vulnerability": "VCID-zpvv-4hjw-g3bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mod_cluster@1.3.8-2.Final_redhat_2.1.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036330?format=api", "purl": "pkg:rpm/redhat/tomcat7@7.0.70-25.ep7?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-evbs-epz4-ekdy" }, { "vulnerability": "VCID-mqyj-2e2e-63ep" }, { "vulnerability": "VCID-p384-yv4k-nyam" }, { "vulnerability": "VCID-ua1q-91gq-pyaj" }, { "vulnerability": "VCID-vpqe-ab29-guc1" }, { "vulnerability": "VCID-zpvv-4hjw-g3bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat7@7.0.70-25.ep7%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036331?format=api", "purl": "pkg:rpm/redhat/tomcat7@7.0.70-25.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-evbs-epz4-ekdy" }, { "vulnerability": "VCID-mqyj-2e2e-63ep" }, { "vulnerability": "VCID-p384-yv4k-nyam" }, { "vulnerability": "VCID-ua1q-91gq-pyaj" }, { "vulnerability": "VCID-vpqe-ab29-guc1" }, { "vulnerability": "VCID-zpvv-4hjw-g3bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat7@7.0.70-25.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036328?format=api", "purl": "pkg:rpm/redhat/tomcat8@8.0.36-29.ep7?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-evbs-epz4-ekdy" }, { "vulnerability": "VCID-mqyj-2e2e-63ep" }, { "vulnerability": "VCID-p384-yv4k-nyam" }, { "vulnerability": "VCID-ua1q-91gq-pyaj" }, { "vulnerability": "VCID-vpqe-ab29-guc1" }, { "vulnerability": "VCID-zpvv-4hjw-g3bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat8@8.0.36-29.ep7%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036329?format=api", "purl": "pkg:rpm/redhat/tomcat8@8.0.36-29.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-evbs-epz4-ekdy" }, { "vulnerability": "VCID-mqyj-2e2e-63ep" }, { "vulnerability": "VCID-p384-yv4k-nyam" }, { "vulnerability": "VCID-ua1q-91gq-pyaj" }, { "vulnerability": "VCID-vpqe-ab29-guc1" }, { "vulnerability": "VCID-zpvv-4hjw-g3bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat8@8.0.36-29.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036335?format=api", "purl": "pkg:rpm/redhat/tomcat-native@1.2.8-11.redhat_11.ep7?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-evbs-epz4-ekdy" }, { "vulnerability": "VCID-mqyj-2e2e-63ep" }, { "vulnerability": "VCID-p384-yv4k-nyam" }, { "vulnerability": "VCID-ua1q-91gq-pyaj" }, { "vulnerability": "VCID-vpqe-ab29-guc1" }, { "vulnerability": "VCID-zpvv-4hjw-g3bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat-native@1.2.8-11.redhat_11.ep7%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036337?format=api", "purl": "pkg:rpm/redhat/tomcat-native@1.2.8-11.redhat_11.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-evbs-epz4-ekdy" }, { "vulnerability": "VCID-mqyj-2e2e-63ep" }, { "vulnerability": "VCID-p384-yv4k-nyam" }, { "vulnerability": "VCID-ua1q-91gq-pyaj" }, { "vulnerability": "VCID-vpqe-ab29-guc1" }, { "vulnerability": "VCID-zpvv-4hjw-g3bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat-native@1.2.8-11.redhat_11.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036332?format=api", "purl": "pkg:rpm/redhat/tomcat-vault@1.1.6-1.Final_redhat_1.1.ep7?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-evbs-epz4-ekdy" }, { "vulnerability": "VCID-mqyj-2e2e-63ep" }, { "vulnerability": "VCID-p384-yv4k-nyam" }, { "vulnerability": "VCID-ua1q-91gq-pyaj" }, { "vulnerability": "VCID-vpqe-ab29-guc1" }, { "vulnerability": "VCID-zpvv-4hjw-g3bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat-vault@1.1.6-1.Final_redhat_1.1.ep7%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1036333?format=api", "purl": "pkg:rpm/redhat/tomcat-vault@1.1.6-1.Final_redhat_1.1.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-23gs-2b9f-3yey" }, { "vulnerability": "VCID-evbs-epz4-ekdy" }, { "vulnerability": "VCID-mqyj-2e2e-63ep" }, { "vulnerability": "VCID-p384-yv4k-nyam" }, { "vulnerability": "VCID-ua1q-91gq-pyaj" }, { "vulnerability": "VCID-vpqe-ab29-guc1" }, { "vulnerability": "VCID-zpvv-4hjw-g3bt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat-vault@1.1.6-1.Final_redhat_1.1.ep7%3Farch=el7" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12613.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12613.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12613", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48389", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12613" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12613" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:M/C:P/I:N/A:P" }, { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1506523", "reference_id": "1506523", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1506523" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=879708", "reference_id": "879708", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=879708" }, { "reference_url": "https://security.archlinux.org/ASA-201710-32", "reference_id": "ASA-201710-32", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-32" }, { "reference_url": "https://security.archlinux.org/AVG-469", "reference_id": "AVG-469", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3270", "reference_id": "RHSA-2017:3270", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3270" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3475", "reference_id": "RHSA-2017:3475", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3475" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3476", "reference_id": "RHSA-2017:3476", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3476" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3477", "reference_id": "RHSA-2017:3477", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3477" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0316", "reference_id": "RHSA-2018:0316", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0316" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1253", "reference_id": "RHSA-2018:1253", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1253" } ], "weaknesses": [ { "cwe_id": 125, "name": "Out-of-bounds Read", "description": "The product reads data past the end, or before the beginning, of the intended buffer." } ], "exploits": [], "severity_range_score": "2.7 - 7.4", "exploitability": "0.5", "weighted_severity": "6.7", "risk_score": 3.4, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-23gs-2b9f-3yey" }